package cn.zhangxd.registry.configuration;

import org.springframework.security.config.annotation.web.builders.HttpSecurity;
import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;

@EnableWebSecurity
public class WebSecurityConfig extends WebSecurityConfigurerAdapter {

    @Override
    protected void configure(HttpSecurity http) throws Exception {
        http.csrf().ignoringAntMatchers("/eureka/**");
        /*http
                // 关闭csrf保护功能（跨域访问）
                .csrf().disable()
                .authorizeRequests()
                .antMatchers("/api/**").permitAll();*///访问API下无需登录认证权限
        super.configure(http);
    }
}
